Requests to a Taxii endpoint must be authenticated using Basic Authentication with the username and password of a Taxii-user account. The value created by the basic authentication should be sent with the request with the Authorization header. Note that this is different than the authentication scheme used for normal API requests.

For example, the Authorization header for requests to Taxii endpoints should look like: Authorization:Basicb1gB1rdz007.